Important Information About Us
We are the controller responsible for your personal data i.e. the party under data protection law who is responsible for handling your personal data. We are Dr. Edgar Mocanu Unlimited, private unlimited company, with a registered office at 138 University Street, Belfast, Northern Ireland, BT7 1HJ and company number NI604N80.
Postal address: Rotunda Private Clinic, Rotunda Hospital, Parnell Square, Dublin 1;
Telephone: 087 682 5088
You have the right to make a complaint at any time to the Data Protection Commission Office, the Irish Supervisory Authority for Data Protection issues (www.dataprotection.ie). We would, however, appreciate the chance to deal with your concerns before you approach the Data Protection Commissioner so please contact us in the first instance.
It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes, during your attendance with us for medical services.
Data we Collect About You
Personal data, means any information about an individual from which that individual can be identified. It does not include data where the identity has been removed (anonymous data).
We may collect, use, store and transfer different kinds of personal data about you which we have grouped together as follows;
If You Fail to Provide Personal Data
Where we need to collect personal data in order to make a medical diagnosis or for the purposes of providing safe and responsible healthcare services to you or others attending the services, and you fail to provide that data when requested, we may not be able to make such a medical diagnosis or provide the requested healthcare services to you. We will notify you at the time if this is the case.
How is Your Personal Data Collected
We use different methods to collect data from and about you including through;
How We Use Your Personal Data
We will only use your personal data when the law allows us to. We will use your personal data in the following circumstances;
Disclosure of Personal Data
We may share your personal data with the parties set out below;
Where we transfer your information to a third party and that third party is also a controller, they may advise your separately of how they process your personal information.
We may transfer your personal data outside the European Economic Area (EEA). These countries do not always afford an equivalent level of privacy protection and in such circumstances we will take specific steps, in accordance with data protection law, to protect your personal information. In particular, for transfers of personal data outside the EEA where there is no adequacy decision by the European Commission we may rely on contractual provisions approved by the European Commission. Where we transfer your personal information to providers based in the US, we may transfer data to them if they are part of the privacy shield which requires them to provide similar protection to personal data shared between Europe and the US.
Please contact us if you want further information on specific mechanisms used by us when transferring your personal data out of the EEA.
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition we limit access to your personal data to those employees, agents, contractors and other third parties who have a need to know. They will only process your personal data on my instructions and they are subject to a duty of confidentiality.
We have put in place procedures to deal with any suspected data breach and will notify you and any applicable regulator of a breach when we are legally required to do so.
We will retain your health related information for the retention period set out in accordance with the HSE policy on record retention periods.
In addition by law we have to keep basic information about my patients including contact, identity, financial and payment details for six years from the date of payment for tax purposes.
In some circumstances we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes, in which case we may use this information without further notice to you.
Your Legal Rights
Under certain circumstances, you have rights under data protection law in relation to your personal data. You have the right to;
Please note that in some circumstances the rights set out above are limited under data protection law. If you wish to exercise any of these rights please contact us at the details set out above.
We will endeavour to respond to your request within one month. If we are unable to deal with your request within one month we may extend this period by a further two months and will explain why.
You also have the right to lodge a complaint to the Office of the Data Protection Commission. Please visit www.dataprotection.ie for more information.
You will not have to pay a fee to access your personal data (or to exercise any other rights). However we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively we could refuse to comply with your request in these circumstances.
We may need to request specific information from you to help me confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask for further information in relation to your request to speed up our response.
Third Party Websites